Overview

URL delivery.attempt.failure.feedmybot.net/public/DrP6ZBh7vivR6lKD9P9RTzakkhq39kJ3
IP193.34.145.202
ASNContabo GmbH
Location Germany
Report completed2022-09-30 21:32:21 UTC
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blocklists

OpenPhish
Scan Date Severity Indicator Comment
2022-09-30 2 delivery.attempt.failure.feedmybot.net/public/DrP6ZBh7vivR6lKD9P9RTzakkhq39kJ3 DHL Airways, Inc.
PhishTank  No alerts detected
Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-09-30 2 delivery.attempt.failure.feedmybot.net/public/DrP6ZBh7vivR6lKD9P9RTzakkhq39kJ3 Phishing
2022-09-30 2 delivery.attempt.failure.feedmybot.net/public Phishing
2022-09-30 2 delivery.attempt.failure.feedmybot.net/public/ Phishing
2022-09-30 2 delivery.attempt.failure.feedmybot.net/nqnrS6yBCssG3ogLrvfHvEV0RHooBE8X/ Phishing
2022-09-30 2 delivery.attempt.failure.feedmybot.net/public/nqnrS6yBCssG3ogLrvfHvEV0RHooBE8X Phishing
2022-09-30 2 delivery.attempt.failure.feedmybot.net/public/js/session-recorder.js Phishing
2022-09-30 2 delivery.attempt.failure.feedmybot.net/public/js/app.js Phishing
2022-09-30 2 delivery.attempt.failure.feedmybot.net/fonts/vendor/@fontsource/roboto/file (...) Phishing
2022-09-30 2 delivery.attempt.failure.feedmybot.net/fonts/vendor/@fortawesome/fontawesom (...) Phishing
2022-09-30 2 delivery.attempt.failure.feedmybot.net/fonts/vendor/@fontsource/roboto/file (...) Phishing
2022-09-30 2 delivery.attempt.failure.feedmybot.net/fonts/vendor/@fortawesome/fontawesom (...) Phishing
2022-09-30 2 delivery.attempt.failure.feedmybot.net/fonts/vendor/@fortawesome/fontawesom (...) Phishing
mnemonic secure dns  No alerts detected
Quad9 DNS  No alerts detected


Files

No files detected



Passive DNS (15)

Passive DNS Source Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
mnemonic passive DNS push.services.mozilla.com (1) 2140 2015-09-03 10:29:36 UTC 2022-09-30 05:12:28 UTC 54.149.101.24
mnemonic passive DNS static.hotjar.com (1) 641 2014-11-01 05:14:27 UTC 2022-09-30 05:30:22 UTC 54.230.111.113
mnemonic passive DNS firefox.settings.services.mozilla.com (2) 867 2020-05-27 20:08:30 UTC 2022-09-30 17:00:01 UTC 143.204.55.27
mnemonic passive DNS contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-09-30 04:56:26 UTC 34.117.237.239
mnemonic passive DNS delivery.attempt.failure.feedmybot.net (17) 0 2022-09-03 17:19:41 UTC 2022-09-30 14:36:15 UTC 193.34.145.202 Unknown ranking
mnemonic passive DNS cdnjs.cloudflare.com (1) 235 2020-10-20 10:17:36 UTC 2022-09-30 06:01:15 UTC 104.17.25.14
mnemonic passive DNS files.killbot.org (1) 0 2020-10-15 14:12:52 UTC 2022-09-30 14:13:51 UTC 104.21.11.160 Unknown ranking
mnemonic passive DNS content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2022-09-30 05:34:07 UTC 34.160.144.191
mnemonic passive DNS img-getpocket.cdn.mozilla.net (6) 1631 2017-09-01 03:40:57 UTC 2022-09-30 13:49:02 UTC 34.120.237.76
mnemonic passive DNS r.lr-in.com (1) 16828 2021-07-27 13:26:50 UTC 2022-09-30 14:42:14 UTC 104.198.23.205
mnemonic passive DNS kit.fontawesome.com (1) 1868 2019-03-29 02:12:52 UTC 2022-09-30 08:13:04 UTC 104.18.23.52
mnemonic passive DNS r3.o.lencr.org (6) 344 2020-12-02 08:52:13 UTC 2022-09-30 04:55:29 UTC 23.36.77.32
mnemonic passive DNS ocsp.digicert.com (2) 86 2012-05-21 07:02:23 UTC 2022-09-30 15:21:19 UTC 93.184.220.29
mnemonic passive DNS cdn.lr-in.com (1) 13237 2021-07-19 14:36:56 UTC 2022-09-30 10:44:06 UTC 172.67.206.254
mnemonic passive DNS ka-f.fontawesome.com (3) 3598 2019-12-17 06:36:13 UTC 2022-09-30 06:28:19 UTC 172.64.203.28


Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 193.34.145.202

Date UQ / IDS / BL URL IP
2022-12-01 16:42:19 +0000
0 - 0 - 19 timebokantoys.com/.quarantine/Postale/Dir/Ide (...) 193.34.145.202
2022-12-01 13:55:36 +0000
0 - 0 - 20 timebokantoys.com/.quarantine/Postale/Dir/Ide (...) 193.34.145.202
2022-11-24 05:25:35 +0000
0 - 0 - 1 gur.org.il/ 193.34.145.202
2022-10-04 09:44:31 +0000
0 - 0 - 14 delivery.attempt.failure.feedmybot.net/public (...) 193.34.145.202
2022-09-30 22:50:41 +0000
0 - 0 - 15 delivery.attempt.failure.feedmybot.net/public (...) 193.34.145.202

Last 5 reports on ASN: Contabo GmbH

Date UQ / IDS / BL URL IP
2022-12-08 19:29:22 +0000
0 - 0 - 1 check.myhomeequitycheck.com/ 38.242.205.174
2022-12-08 18:49:27 +0000
0 - 0 - 2 crackingkeys.com/getflv-crack-key/ 75.119.130.251
2022-12-08 17:44:55 +0000
0 - 0 - 4 alphadns.havg.xyz/ 194.163.144.98
2022-12-08 15:18:38 +0000
0 - 0 - 2 muthurwagirlssecondary.sc.ke/ 185.239.208.32
2022-12-08 15:11:40 +0000
0 - 0 - 9 cajonesparatpv.com/ 144.91.69.29

Last 5 reports on domain: feedmybot.net

Date UQ / IDS / BL URL IP
2022-10-04 09:44:31 +0000
0 - 0 - 14 delivery.attempt.failure.feedmybot.net/public (...) 193.34.145.202
2022-09-30 22:50:41 +0000
0 - 0 - 15 delivery.attempt.failure.feedmybot.net/public (...) 193.34.145.202
2022-09-30 22:18:48 +0000
0 - 0 - 14 delivery.attempt.failure.feedmybot.net/public (...) 193.34.145.202
2022-09-30 22:18:27 +0000
0 - 0 - 14 delivery.attempt.failure.feedmybot.net/public (...) 193.34.145.202
2022-09-30 22:17:46 +0000
0 - 0 - 14 delivery.attempt.failure.feedmybot.net/public (...) 193.34.145.202

Last 5 reports with similar screenshot

Date UQ / IDS / BL URL IP
2022-11-30 06:09:14 +0000
17 - 0 - 14 i.dkundservice-postnord.hardcars.ro/public/Sy (...) 89.35.173.163
2022-11-30 06:07:59 +0000
17 - 0 - 15 i.dkundservice-postnord.hardcars.ro/public/Bc (...) 89.35.173.163
2022-11-30 06:05:54 +0000
16 - 0 - 15 i.dkundservice-postnord.hardcars.ro/public/qc (...) 89.35.173.163
2022-11-30 06:03:18 +0000
16 - 0 - 15 i.dkundservice-postnord.hardcars.ro/public/Hx (...) 89.35.173.163
2022-11-30 06:01:20 +0000
18 - 0 - 15 i.dkundservice-postnord.hardcars.ro/public/Gy (...) 89.35.173.163


JavaScript

Executed Scripts (10)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (45)


Request Response
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "763E2DADFDD286A51327CD2000CA335E30CD0B9B7267875D22CA33F7556BA200"
Last-Modified: Fri, 30 Sep 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6048
Expires: Fri, 30 Sep 2022 23:12:58 GMT
Date: Fri, 30 Sep 2022 21:32:10 GMT
Connection: keep-alive

                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.27
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Backoff, Retry-After, Content-Length
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Fri, 30 Sep 2022 21:16:15 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 dbfaae0db03f11cf713bbcbdb25be4a2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: ewLPXA_varTkWuUcUdqXLlxE7sFB0F2I57oRzh271D8jL08KoIPGsw==
Age: 955


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    2d12f67fe57a87e7366b662d153a5582
Sha1:   d7b02d81cc74f24a251d9363e0f4b0a149264ec1
Sha256: 73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "E4CAB1657F3E7A3C2D219A7802955629F414AC772EA4576C30AA7A71533A10C7"
Last-Modified: Fri, 30 Sep 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2658
Expires: Fri, 30 Sep 2022 22:16:28 GMT
Date: Fri, 30 Sep 2022 21:32:10 GMT
Connection: keep-alive

                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         34.160.144.191
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
x-amz-id-2: 0CjRecpRxiOwYsK21q4Rf2DZBadmoRKko9yraMQtB1DOIfy1DfJYzqusg8N70Gu24VR6uaBGnBk=
x-amz-request-id: XZ33XH8FZBZBDYDR
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 30 Sep 2022 20:51:31 GMT
age: 2439
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
etag: "6113f8408c59aebe188d6af273b90743"
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    6113f8408c59aebe188d6af273b90743
Sha1:   7398873bf00f99944eaa77ad3ebc0d43c23dba6b
Sha256: b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Fri, 30 Sep 2022 21:32:10 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.27
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Fri, 30 Sep 2022 21:29:33 GMT
Cache-Control: max-age=3600, max-age=3600
Expires: Fri, 30 Sep 2022 22:12:13 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 dbfaae0db03f11cf713bbcbdb25be4a2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: WRNVB3kYsdF9A9AZH6fX3WzFLynA4rGLAVNpd3Ao7-nba7yQ7MpMKQ==
Age: 157


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            GET /public/DrP6ZBh7vivR6lKD9P9RTzakkhq39kJ3 HTTP/1.1 
Host: delivery.attempt.failure.feedmybot.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                         
                                         193.34.145.202
HTTP/1.1 302 Found
Content-Type: text/html; charset=UTF-8
                                        
Date: Fri, 30 Sep 2022 21:32:10 GMT
Server: Apache
Cache-Control: no-cache, private
Set-Cookie: XSRF-TOKEN=eyJpdiI6Ijg5RTFrYVZUSlphbXV6UWY4UUlsS1E9PSIsInZhbHVlIjoiVVdManorOEZKK0hmSGt3K2xlOEVkcVZ4eGlkeGZRNHlsTnRMMGZSU2tleUcxS0s1RlVaNlA4SWRpSTREb2cxRkFsbG9pOXZiWFNwcy9vQzVlM2phSzJzVnlvcHZtUHcveVI2cnJGL1hEVGdtMDI4UkpEMFliVEpHZEtxTmVadm8iLCJtYWMiOiIyODZmMDM2MTJlNTNlODM5OGYyOWMxZDYwOTMyYjlmNDM4YjY3NGEzYmNmZDBjZjUyZTY1ODcwNDUxN2UxMjBiIiwidGFnIjoiIn0%3D; expires=Fri, 30-Sep-2022 23:32:10 GMT; Max-Age=7200; path=/; samesite=lax laravel_session=eyJpdiI6IkRsUlljajBqQjBLOHFoSzZ1NExldGc9PSIsInZhbHVlIjoiUHN4RU5FbHNLYzZvdlpUeXJXV0N0eWlWUVBCazhTZkpwZUgrcTRtL25raEQ4bXBkcnpReFFWVVg5dndTemJlbHYxOVduNE9rTFk4NDlDMkhKQUp4cnlFbzlQSlRnYWtBcVZtTHRNaDFhYVRsenErN3M1VEh0ZG9odFd4YUJsTzgiLCJtYWMiOiIzZWI5MzYxZDgwMDUzYzYzZTYxZDJiNzRkNDBkNDRkNDkyNGM2NjQ0NmFhNmJkYTkxZjYxYmE4NDgzNGNmZDlkIiwidGFnIjoiIn0%3D; expires=Fri, 30-Sep-2022 23:32:10 GMT; Max-Age=7200; path=/; httponly; samesite=lax
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Location: http://delivery.attempt.failure.feedmybot.net/public
Keep-Alive: timeout=5, max=100
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   454
Md5:    264148e72b25b42268828a0ead1694d4
Sha1:   089b04a8ac67b659de53a27bfd14ae415168328d
Sha256: 31bdcafac0809072039e6b80e67c6d0c8ec3b6501450e92b6a7cc28af9996332

Alerts:
  Blocklists:
    - openphish: DHL Airways, Inc.
    - fortinet: Phishing
                                        
                                            GET /public HTTP/1.1 
Host: delivery.attempt.failure.feedmybot.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6Ijg5RTFrYVZUSlphbXV6UWY4UUlsS1E9PSIsInZhbHVlIjoiVVdManorOEZKK0hmSGt3K2xlOEVkcVZ4eGlkeGZRNHlsTnRMMGZSU2tleUcxS0s1RlVaNlA4SWRpSTREb2cxRkFsbG9pOXZiWFNwcy9vQzVlM2phSzJzVnlvcHZtUHcveVI2cnJGL1hEVGdtMDI4UkpEMFliVEpHZEtxTmVadm8iLCJtYWMiOiIyODZmMDM2MTJlNTNlODM5OGYyOWMxZDYwOTMyYjlmNDM4YjY3NGEzYmNmZDBjZjUyZTY1ODcwNDUxN2UxMjBiIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IkRsUlljajBqQjBLOHFoSzZ1NExldGc9PSIsInZhbHVlIjoiUHN4RU5FbHNLYzZvdlpUeXJXV0N0eWlWUVBCazhTZkpwZUgrcTRtL25raEQ4bXBkcnpReFFWVVg5dndTemJlbHYxOVduNE9rTFk4NDlDMkhKQUp4cnlFbzlQSlRnYWtBcVZtTHRNaDFhYVRsenErN3M1VEh0ZG9odFd4YUJsTzgiLCJtYWMiOiIzZWI5MzYxZDgwMDUzYzYzZTYxZDJiNzRkNDBkNDRkNDkyNGM2NjQ0NmFhNmJkYTkxZjYxYmE4NDgzNGNmZDlkIiwidGFnIjoiIn0%3D
Upgrade-Insecure-Requests: 1

                                         
                                         193.34.145.202
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=iso-8859-1
                                        
Date: Fri, 30 Sep 2022 21:32:10 GMT
Server: Apache
Location: http://delivery.attempt.failure.feedmybot.net/public/
Content-Length: 261
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   261
Md5:    7579e9d58c6f7d21d09866f8ce48eca9
Sha1:   749866ce8ea49eccdd1d8ca9ef4d4d7fc2e2cc83
Sha256: 2ba7c083bc89bfedbde3668bdd74df227534f3938fac4a5941ee278edc54f70e

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 2015
Cache-Control: 'max-age=158059'
Date: Fri, 30 Sep 2022 21:32:11 GMT
Last-Modified: Fri, 30 Sep 2022 20:58:36 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: xlwOCllX9fujKTUqGJh5cA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                         
                                         54.149.101.24
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: E3oxpsTbSD62Wk6328nKD1RzYX8=

                                        
                                            GET /public/ HTTP/1.1 
Host: delivery.attempt.failure.feedmybot.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6Ijg5RTFrYVZUSlphbXV6UWY4UUlsS1E9PSIsInZhbHVlIjoiVVdManorOEZKK0hmSGt3K2xlOEVkcVZ4eGlkeGZRNHlsTnRMMGZSU2tleUcxS0s1RlVaNlA4SWRpSTREb2cxRkFsbG9pOXZiWFNwcy9vQzVlM2phSzJzVnlvcHZtUHcveVI2cnJGL1hEVGdtMDI4UkpEMFliVEpHZEtxTmVadm8iLCJtYWMiOiIyODZmMDM2MTJlNTNlODM5OGYyOWMxZDYwOTMyYjlmNDM4YjY3NGEzYmNmZDBjZjUyZTY1ODcwNDUxN2UxMjBiIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IkRsUlljajBqQjBLOHFoSzZ1NExldGc9PSIsInZhbHVlIjoiUHN4RU5FbHNLYzZvdlpUeXJXV0N0eWlWUVBCazhTZkpwZUgrcTRtL25raEQ4bXBkcnpReFFWVVg5dndTemJlbHYxOVduNE9rTFk4NDlDMkhKQUp4cnlFbzlQSlRnYWtBcVZtTHRNaDFhYVRsenErN3M1VEh0ZG9odFd4YUJsTzgiLCJtYWMiOiIzZWI5MzYxZDgwMDUzYzYzZTYxZDJiNzRkNDBkNDRkNDkyNGM2NjQ0NmFhNmJkYTkxZjYxYmE4NDgzNGNmZDlkIiwidGFnIjoiIn0%3D
Upgrade-Insecure-Requests: 1

                                         
                                         193.34.145.202
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Date: Fri, 30 Sep 2022 21:32:10 GMT
Server: Apache
Cache-Control: no-cache, private
Set-Cookie: XSRF-TOKEN=eyJpdiI6IithSnJWa1BGaXQwZUEwZHRlNUNNRUE9PSIsInZhbHVlIjoiNkNZVG0yMlNDQW14dTgwMStMRG4ycjc0RE1pWFhkT3ZLMlcyYS9pcC9YelE3WmI3RG1sSy9sS1RPYWRicGE4MzBraXBST2NPOGl0L0EyMy9ab0JVZ0hnbTB3ODRreGlSUk5nV2x2c1ZhSndTTGQ5YnJ1clRHcWJvcTdlcVJmVnIiLCJtYWMiOiIzYzNkZmYyM2E2ZDJjNzJhYWQyOGYwMzNmN2RkMDJhZjgxYTVjMDc3NTlmYzkwMzJmMGI5OTMzZmFjMjM1M2M1IiwidGFnIjoiIn0%3D; expires=Fri, 30-Sep-2022 23:32:11 GMT; Max-Age=7200; path=/; samesite=lax laravel_session=eyJpdiI6IkVPcmthVWRpV0xnYVFDM3BBNGdGaWc9PSIsInZhbHVlIjoiaFlmYTdOT3RwZi9XdHJHOS9pTWNKU1Q2aXE3WlFJRXB3Ly9VZWVrNTNSV3ZqMnc2NDhpb1B2Qmh1c0Jhb3lNUHNBNXl4SWxzTlBVaUgxeXlIU0V2cW05dFRrbHhYZzQ3UVlTSWM2Mzd3QlordDV0cDV1OGNlWVIyTnNsckhyOUsiLCJtYWMiOiJhYTIxNDA1NTYyYzhjNmZmZmNjOTBhMDdkNzA2YjNiZTc5ZDZmZDY1YTI1YzE5MzFiNTJmOWFlMTc0ZmI0NTRmIiwidGFnIjoiIn0%3D; expires=Fri, 30-Sep-2022 23:32:11 GMT; Max-Age=7200; path=/; httponly; samesite=lax
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text
Size:   539
Md5:    a65e79630355524d23fa542c84455e06
Sha1:   fa227fca5bada7b9c112f38fad3e89b63aaea3ff
Sha256: 4dc931f4453f2f030fcd01118d8bfe40177739ec691bae0b1c62e9a551592963

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "C17A343CEB786A421F8C3ABFFFAE350E12C92271A69FC88EB8E8BAB568877D6B"
Last-Modified: Fri, 30 Sep 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6179
Expires: Fri, 30 Sep 2022 23:15:11 GMT
Date: Fri, 30 Sep 2022 21:32:12 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "C17A343CEB786A421F8C3ABFFFAE350E12C92271A69FC88EB8E8BAB568877D6B"
Last-Modified: Fri, 30 Sep 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6179
Expires: Fri, 30 Sep 2022 23:15:11 GMT
Date: Fri, 30 Sep 2022 21:32:12 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "C17A343CEB786A421F8C3ABFFFAE350E12C92271A69FC88EB8E8BAB568877D6B"
Last-Modified: Fri, 30 Sep 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6179
Expires: Fri, 30 Sep 2022 23:15:11 GMT
Date: Fri, 30 Sep 2022 21:32:12 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9789cead-4e6c-4a12-9b45-25d0efd38fc9.png HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 16011
x-amzn-requestid: d58dfdcd-383a-45ac-8ae2-2b97f016b6a4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZPdbjFy1IAMF84A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63360f7c-1ca9707a5e5087fd769d9ab6;Sampled=0
x-amzn-remapped-date: Thu, 29 Sep 2022 21:34:52 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: QKHN1asEv6w1mTLxsmn7Oj5AZTsPcg0H8zv5_qQ1BYptjL254kCZdA==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 d01e7742f82df0bbc1fb681d709ed69c.cloudfront.net (CloudFront), 1.1 google
date: Thu, 29 Sep 2022 22:20:36 GMT
age: 83496
etag: "78b798f2cfa7db13a6b5ca2ca2783bece5e77d5d"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   16011
Md5:    1389b1d624b44706c7a6f6b7eb769241
Sha1:   78b798f2cfa7db13a6b5ca2ca2783bece5e77d5d
Sha256: c3c2526b98be06fc7e793e1150bacde2a7bd718e29a851a6e6992e8d84333790
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6d906d66-cd90-4963-827e-8d0564c0f787.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 5106
x-amzn-requestid: a906507c-8820-489c-9978-7d0fd026c862
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZPd5PE0MIAMF3DA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6336103a-49eb3879088f17bc01d177c7;Sampled=0
x-amzn-remapped-date: Thu, 29 Sep 2022 21:38:02 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: op_2CSOAx9-hqXvj1nOyitq0UXqIyItmquWjMkmMdKWnwoTIA_SA6A==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google
date: Thu, 29 Sep 2022 21:45:26 GMT
age: 85606
etag: "3481dce8ab711111fc8863d88bee1a887cfd43ac"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   5106
Md5:    13a12db696bc2bf6a6ea2f48f4c1428e
Sha1:   3481dce8ab711111fc8863d88bee1a887cfd43ac
Sha256: 6dae6c9e5de4146e1f528a36a1795225c9731385f13927fc001fb3f9842fe8f1
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F59da9c68-5ffa-4dc1-adf8-645278cd60ca.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 10380
x-amzn-requestid: 35ee2a77-159c-4bb4-a825-98c638398586
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZPdZYHsTIAMFQNQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63360f6f-4f68073432bcea371c7b8f03;Sampled=0
x-amzn-remapped-date: Thu, 29 Sep 2022 21:34:39 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: IENB0e-e13ywHJKPgyLWn1bGPMMxFLUu3cIUcREjGhxDEMROEL1jBg==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google
date: Thu, 29 Sep 2022 21:45:15 GMT
age: 85617
etag: "265840b2d2fc6eb764cc6409b05deee8d77a19c2"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   10380
Md5:    139a144f8cb04ac8aae65f4bad1473e7
Sha1:   265840b2d2fc6eb764cc6409b05deee8d77a19c2
Sha256: 6e0f01b6bdd5a92e92c7b29a6172a2900c68900afd2abba948940621252e0fd8
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F98c23448-09e3-4c05-86c5-dafbe6ca8a0e.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8059
x-amzn-requestid: f8bb9e4b-9f3c-47ba-8524-de16155e536d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZNepwHAVoAMFvNA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633544a4-5d884e29378635b60592b618;Sampled=0
x-amzn-remapped-date: Thu, 29 Sep 2022 07:09:24 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: NMiKZSkokVXNTV76vsVJ7VEu6YFfT9MqL7tHtT8CwZq0BwTbXOpm6Q==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 ead78c395f4bede3ec6cd7ea180e3d3a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 30 Sep 2022 06:34:26 GMT
age: 53866
etag: "86dd3bf133e9eddf8852f39e1ee695ee599ac886"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8059
Md5:    d21d2bdcedbd619a80017054076319f9
Sha1:   86dd3bf133e9eddf8852f39e1ee695ee599ac886
Sha256: fc5672d5a8e9c6a5ec531f7ba05b65c192af37edf6c3a48105df3685de44ec0d
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe12af206-9f17-40de-9764-14d3cdcb4d2f.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 6722
x-amzn-requestid: 6aca2e04-02b4-4e42-8bba-9bbe2ace1ed0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZPeLrGq1oAMFuAw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633610b0-65b0664d0233107029ef0157;Sampled=0
x-amzn-remapped-date: Thu, 29 Sep 2022 21:40:00 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: DClqs8vTlqibRwXU8dIkkFCUxigTLduturaxCfuvsMtDm-4VXjx2mg==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 09331f0822fc98eebaf04130a83dbd44.cloudfront.net (CloudFront), 1.1 google
date: Thu, 29 Sep 2022 22:12:16 GMT
age: 83996
etag: "3248ca3a8b88efd5be8499898fce957d096cf211"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   6722
Md5:    5b8d0a19bc0a56bb40a975c5c71af05a
Sha1:   3248ca3a8b88efd5be8499898fce957d096cf211
Sha256: da44d6dd845dc400b0b76f19c67e5a79d9359ce24fe5e4490477f195b23203b4
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff5cbaf6d-fc16-4449-8b54-1d55f68eff4f.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 14073
x-amzn-requestid: 4ff72590-e28d-4d4b-af1a-4d62e75e3d66
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZMKnpEsJoAMFlBQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6334be30-38b014a25551aa0a2ab04ccf;Sampled=0
x-amzn-remapped-date: Wed, 28 Sep 2022 21:35:44 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: dyDhatfeYzzSQpRY7JpOIu3VhjlI8IOWcKCLCBWYaxJ1CYgCxqdQjA==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 567b44ed19c8caed2570b7bcd8c70034.cloudfront.net (CloudFront), 1.1 google
date: Thu, 29 Sep 2022 21:49:47 GMT
age: 85345
etag: "72603efba82d649ce5a7a0ca45dc830c0d9ef012"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   14073
Md5:    11594ce7500d8776bfd5162b17f87d72
Sha1:   72603efba82d649ce5a7a0ca45dc830c0d9ef012
Sha256: 511f5aa33750cd4a02cf3968bf165ffa521e77cb4fb7135b516d7ad14e8b9d01
                                        
                                            GET /nqnrS6yBCssG3ogLrvfHvEV0RHooBE8X/ HTTP/1.1 
Host: delivery.attempt.failure.feedmybot.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://delivery.attempt.failure.feedmybot.net/public/
Cookie: XSRF-TOKEN=eyJpdiI6IithSnJWa1BGaXQwZUEwZHRlNUNNRUE9PSIsInZhbHVlIjoiNkNZVG0yMlNDQW14dTgwMStMRG4ycjc0RE1pWFhkT3ZLMlcyYS9pcC9YelE3WmI3RG1sSy9sS1RPYWRicGE4MzBraXBST2NPOGl0L0EyMy9ab0JVZ0hnbTB3ODRreGlSUk5nV2x2c1ZhSndTTGQ5YnJ1clRHcWJvcTdlcVJmVnIiLCJtYWMiOiIzYzNkZmYyM2E2ZDJjNzJhYWQyOGYwMzNmN2RkMDJhZjgxYTVjMDc3NTlmYzkwMzJmMGI5OTMzZmFjMjM1M2M1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IkVPcmthVWRpV0xnYVFDM3BBNGdGaWc9PSIsInZhbHVlIjoiaFlmYTdOT3RwZi9XdHJHOS9pTWNKU1Q2aXE3WlFJRXB3Ly9VZWVrNTNSV3ZqMnc2NDhpb1B2Qmh1c0Jhb3lNUHNBNXl4SWxzTlBVaUgxeXlIU0V2cW05dFRrbHhYZzQ3UVlTSWM2Mzd3QlordDV0cDV1OGNlWVIyTnNsckhyOUsiLCJtYWMiOiJhYTIxNDA1NTYyYzhjNmZmZmNjOTBhMDdkNzA2YjNiZTc5ZDZmZDY1YTI1YzE5MzFiNTJmOWFlMTc0ZmI0NTRmIiwidGFnIjoiIn0%3D
Upgrade-Insecure-Requests: 1

                                         
                                         193.34.145.202
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=iso-8859-1
                                        
Date: Fri, 30 Sep 2022 21:32:12 GMT
Server: Apache
Location: http://delivery.attempt.failure.feedmybot.net/public/nqnrS6yBCssG3ogLrvfHvEV0RHooBE8X
Content-Length: 293
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   293
Md5:    74a887662d9d8fc988982d1e6bf1e510
Sha1:   1b8d4a04b5838a5f32f04c9cb93773a9702af10c
Sha256: d1b2443209badee912e379218dc6166be7e6d0f0721f3a26f9c3cb999d164108

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /public/nqnrS6yBCssG3ogLrvfHvEV0RHooBE8X HTTP/1.1 
Host: delivery.attempt.failure.feedmybot.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://delivery.attempt.failure.feedmybot.net/public/
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6IithSnJWa1BGaXQwZUEwZHRlNUNNRUE9PSIsInZhbHVlIjoiNkNZVG0yMlNDQW14dTgwMStMRG4ycjc0RE1pWFhkT3ZLMlcyYS9pcC9YelE3WmI3RG1sSy9sS1RPYWRicGE4MzBraXBST2NPOGl0L0EyMy9ab0JVZ0hnbTB3ODRreGlSUk5nV2x2c1ZhSndTTGQ5YnJ1clRHcWJvcTdlcVJmVnIiLCJtYWMiOiIzYzNkZmYyM2E2ZDJjNzJhYWQyOGYwMzNmN2RkMDJhZjgxYTVjMDc3NTlmYzkwMzJmMGI5OTMzZmFjMjM1M2M1IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IkVPcmthVWRpV0xnYVFDM3BBNGdGaWc9PSIsInZhbHVlIjoiaFlmYTdOT3RwZi9XdHJHOS9pTWNKU1Q2aXE3WlFJRXB3Ly9VZWVrNTNSV3ZqMnc2NDhpb1B2Qmh1c0Jhb3lNUHNBNXl4SWxzTlBVaUgxeXlIU0V2cW05dFRrbHhYZzQ3UVlTSWM2Mzd3QlordDV0cDV1OGNlWVIyTnNsckhyOUsiLCJtYWMiOiJhYTIxNDA1NTYyYzhjNmZmZmNjOTBhMDdkNzA2YjNiZTc5ZDZmZDY1YTI1YzE5MzFiNTJmOWFlMTc0ZmI0NTRmIiwidGFnIjoiIn0%3D
Upgrade-Insecure-Requests: 1

                                         
                                         193.34.145.202
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Date: Fri, 30 Sep 2022 21:32:12 GMT
Server: Apache
Cache-Control: no-cache, private
Set-Cookie: XSRF-TOKEN=eyJpdiI6IjJvMkg1c1ZBRUxNdXhxODUzcEhDUUE9PSIsInZhbHVlIjoiaDg1dldoQ2U1NGxCUlJqYjdhVTh1MGFMd0dWczlLNzZRb2g0Q2h2eDlmSWZJajd3THFmb21WUFI0L25KSmhuVVBVZlFFTE8rdlFHZUJXRDZicFBiSHpNbVdjR3JrM1luR3Z2MTlBYlhDNnBwY2pTUVdIN0ZnNXBsRVRyRXljdnAiLCJtYWMiOiIzYjJjM2U5ODRjM2NkYTI3MTBlZWFlN2ZhMDAzMTRiMGViMWRhM2QwN2E4NTE5NTU3ZjFiOTY2YmE3NTZlODA5IiwidGFnIjoiIn0%3D; expires=Fri, 30-Sep-2022 23:32:13 GMT; Max-Age=7200; path=/; samesite=lax laravel_session=eyJpdiI6InhJRGN4cGVRaVdBQ3BScEVTRWVBZWc9PSIsInZhbHVlIjoiRmdETWpOd1RLQ0lnUTR6ODNtZWNQTXZwUllMVm5xdTlwdGxNTmVmNEFZcWRzR2hTYklydFQrN015R1o5eGNjNnBKSTRLSUlBUUFoTzNpYzl6ZkliTWpTemN4dUszdWU5QTIvZTRQa1JJb1Q5Vlg5ZkY4QU9kcEZ6MnRMTnIzbjEiLCJtYWMiOiJkMDY4NzI1ZmYxZDlmN2NmOWYxYjJkZGIyYzBlZDlhMjNkMmNkNWY1NTU4OWE2YWM4Yzk5YjlhNWYxNzliNzM0IiwidGFnIjoiIn0%3D; expires=Fri, 30-Sep-2022 23:32:13 GMT; Max-Age=7200; path=/; httponly; samesite=lax
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- assembler source text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (39884)
Size:   60081
Md5:    2a76b41ad6ee76f35432499c03cf4804
Sha1:   a4154aebdd5a6c80dabe3438cd2020fbe1e82215
Sha256: 7867a5073349d922018457a9880caa53ae44a7143ba5ff12d7d5f13ad0a65df2

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css HTTP/1.1 
Host: cdnjs.cloudflare.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://delivery.attempt.failure.feedmybot.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.17.25.14
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
date: Fri, 30 Sep 2022 21:32:13 GMT
content-length: 5631
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03e5f-7918"
last-modified: Mon, 04 May 2020 16:10:07 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 1379910
expires: Wed, 20 Sep 2023 21:32:13 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=RWiI%2BtDtngPSOVTQgMiaQv24ZB43CLa8MORLJSKglLP6Xv1TZ4oxsu2B%2F4J%2FaXFPbhZCa%2FQ7VyTDPEfY7YmHVWUpNblFyMOVAQlwtwMj5LYpf0ruZKl3WVfKsi2%2Froyq4Uyq%2BYeB"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 753011ea9fbab4ed-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (30837)
Size:   5631
Md5:    109d1ed85cd01f9cdab73a4cac5bf80d
Sha1:   d6c6498ad46de2d8e2008a8ff68e364ae7f16b32
Sha256: 8b3a74fe462f5b3c0635995fd721a60eb640e237680b0b532b96711f2823e8bc
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 5536
Cache-Control: 'max-age=158059'
Date: Fri, 30 Sep 2022 21:32:13 GMT
Last-Modified: Fri, 30 Sep 2022 19:59:57 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /public/js/session-recorder.js HTTP/1.1 
Host: delivery.attempt.failure.feedmybot.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://delivery.attempt.failure.feedmybot.net/public/nqnrS6yBCssG3ogLrvfHvEV0RHooBE8X
Cookie: XSRF-TOKEN=eyJpdiI6IjJvMkg1c1ZBRUxNdXhxODUzcEhDUUE9PSIsInZhbHVlIjoiaDg1dldoQ2U1NGxCUlJqYjdhVTh1MGFMd0dWczlLNzZRb2g0Q2h2eDlmSWZJajd3THFmb21WUFI0L25KSmhuVVBVZlFFTE8rdlFHZUJXRDZicFBiSHpNbVdjR3JrM1luR3Z2MTlBYlhDNnBwY2pTUVdIN0ZnNXBsRVRyRXljdnAiLCJtYWMiOiIzYjJjM2U5ODRjM2NkYTI3MTBlZWFlN2ZhMDAzMTRiMGViMWRhM2QwN2E4NTE5NTU3ZjFiOTY2YmE3NTZlODA5IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6InhJRGN4cGVRaVdBQ3BScEVTRWVBZWc9PSIsInZhbHVlIjoiRmdETWpOd1RLQ0lnUTR6ODNtZWNQTXZwUllMVm5xdTlwdGxNTmVmNEFZcWRzR2hTYklydFQrN015R1o5eGNjNnBKSTRLSUlBUUFoTzNpYzl6ZkliTWpTemN4dUszdWU5QTIvZTRQa1JJb1Q5Vlg5ZkY4QU9kcEZ6MnRMTnIzbjEiLCJtYWMiOiJkMDY4NzI1ZmYxZDlmN2NmOWYxYjJkZGIyYzBlZDlhMjNkMmNkNWY1NTU4OWE2YWM4Yzk5YjlhNWYxNzliNzM0IiwidGFnIjoiIn0%3D

                                         
                                         193.34.145.202
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 30 Sep 2022 21:32:13 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Wed, 30 Mar 2022 03:35:56 GMT
Accept-Ranges: bytes
Content-Length: 45066
Keep-Alive: timeout=5, max=100


--- Additional Info ---
Magic:  ASCII text, with very long lines (44992)
Size:   45066
Md5:    701984b4995f3c29820e83c999b7eb23
Sha1:   a3b50104a3bfa05bf59a317273816c7d8ae1f81d
Sha256: 67ad94e12a745b1b09c6cd616e20a2ad283ed68f8060bd1dd0d9a2b6ad9dc7ee

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /public/css/app.css HTTP/1.1 
Host: delivery.attempt.failure.feedmybot.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://delivery.attempt.failure.feedmybot.net/public/nqnrS6yBCssG3ogLrvfHvEV0RHooBE8X
Cookie: XSRF-TOKEN=eyJpdiI6IjJvMkg1c1ZBRUxNdXhxODUzcEhDUUE9PSIsInZhbHVlIjoiaDg1dldoQ2U1NGxCUlJqYjdhVTh1MGFMd0dWczlLNzZRb2g0Q2h2eDlmSWZJajd3THFmb21WUFI0L25KSmhuVVBVZlFFTE8rdlFHZUJXRDZicFBiSHpNbVdjR3JrM1luR3Z2MTlBYlhDNnBwY2pTUVdIN0ZnNXBsRVRyRXljdnAiLCJtYWMiOiIzYjJjM2U5ODRjM2NkYTI3MTBlZWFlN2ZhMDAzMTRiMGViMWRhM2QwN2E4NTE5NTU3ZjFiOTY2YmE3NTZlODA5IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6InhJRGN4cGVRaVdBQ3BScEVTRWVBZWc9PSIsInZhbHVlIjoiRmdETWpOd1RLQ0lnUTR6ODNtZWNQTXZwUllMVm5xdTlwdGxNTmVmNEFZcWRzR2hTYklydFQrN015R1o5eGNjNnBKSTRLSUlBUUFoTzNpYzl6ZkliTWpTemN4dUszdWU5QTIvZTRQa1JJb1Q5Vlg5ZkY4QU9kcEZ6MnRMTnIzbjEiLCJtYWMiOiJkMDY4NzI1ZmYxZDlmN2NmOWYxYjJkZGIyYzBlZDlhMjNkMmNkNWY1NTU4OWE2YWM4Yzk5YjlhNWYxNzliNzM0IiwidGFnIjoiIn0%3D

                                         
                                         193.34.145.202
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 30 Sep 2022 21:32:13 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Wed, 30 Mar 2022 04:11:08 GMT
Accept-Ranges: bytes
Content-Length: 439658
Keep-Alive: timeout=5, max=100


--- Additional Info ---
Magic:  ASCII text
Size:   439658
Md5:    181990cc2279e4cea65c9363fb37fee9
Sha1:   b85a7ba40043b0c48a034d8382629ef7ec6a1e24
Sha256: 36839348d4cd3d5ffcb15317bc5e8f32b77c644d0c6c0f8f19bdf216caf49293
                                        
                                            GET /public/js/app.js HTTP/1.1 
Host: delivery.attempt.failure.feedmybot.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://delivery.attempt.failure.feedmybot.net/public/nqnrS6yBCssG3ogLrvfHvEV0RHooBE8X
Cookie: XSRF-TOKEN=eyJpdiI6IjJvMkg1c1ZBRUxNdXhxODUzcEhDUUE9PSIsInZhbHVlIjoiaDg1dldoQ2U1NGxCUlJqYjdhVTh1MGFMd0dWczlLNzZRb2g0Q2h2eDlmSWZJajd3THFmb21WUFI0L25KSmhuVVBVZlFFTE8rdlFHZUJXRDZicFBiSHpNbVdjR3JrM1luR3Z2MTlBYlhDNnBwY2pTUVdIN0ZnNXBsRVRyRXljdnAiLCJtYWMiOiIzYjJjM2U5ODRjM2NkYTI3MTBlZWFlN2ZhMDAzMTRiMGViMWRhM2QwN2E4NTE5NTU3ZjFiOTY2YmE3NTZlODA5IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6InhJRGN4cGVRaVdBQ3BScEVTRWVBZWc9PSIsInZhbHVlIjoiRmdETWpOd1RLQ0lnUTR6ODNtZWNQTXZwUllMVm5xdTlwdGxNTmVmNEFZcWRzR2hTYklydFQrN015R1o5eGNjNnBKSTRLSUlBUUFoTzNpYzl6ZkliTWpTemN4dUszdWU5QTIvZTRQa1JJb1Q5Vlg5ZkY4QU9kcEZ6MnRMTnIzbjEiLCJtYWMiOiJkMDY4NzI1ZmYxZDlmN2NmOWYxYjJkZGIyYzBlZDlhMjNkMmNkNWY1NTU4OWE2YWM4Yzk5YjlhNWYxNzliNzM0IiwidGFnIjoiIn0%3D

                                         
                                         193.34.145.202
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 30 Sep 2022 21:32:13 GMT
Server: Apache
Last-Modified: Wed, 30 Mar 2022 03:35:56 GMT
Accept-Ranges: bytes
Content-Length: 1613806
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive


--- Additional Info ---
Magic:  Unicode text, UTF-8 text
Size:   1613806
Md5:    fd900f643203761f2eeca2132fc15f1d
Sha1:   375f23ca9ad75b647373bda03b02e2d0f6e729be
Sha256: 399e233cea4e5468820e5c5f98ddbb156de729983710cf576a6508f076326c68

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /images/logo.png HTTP/1.1 
Host: delivery.attempt.failure.feedmybot.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://delivery.attempt.failure.feedmybot.net/public/nqnrS6yBCssG3ogLrvfHvEV0RHooBE8X
Cookie: XSRF-TOKEN=eyJpdiI6IjJvMkg1c1ZBRUxNdXhxODUzcEhDUUE9PSIsInZhbHVlIjoiaDg1dldoQ2U1NGxCUlJqYjdhVTh1MGFMd0dWczlLNzZRb2g0Q2h2eDlmSWZJajd3THFmb21WUFI0L25KSmhuVVBVZlFFTE8rdlFHZUJXRDZicFBiSHpNbVdjR3JrM1luR3Z2MTlBYlhDNnBwY2pTUVdIN0ZnNXBsRVRyRXljdnAiLCJtYWMiOiIzYjJjM2U5ODRjM2NkYTI3MTBlZWFlN2ZhMDAzMTRiMGViMWRhM2QwN2E4NTE5NTU3ZjFiOTY2YmE3NTZlODA5IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6InhJRGN4cGVRaVdBQ3BScEVTRWVBZWc9PSIsInZhbHVlIjoiRmdETWpOd1RLQ0lnUTR6ODNtZWNQTXZwUllMVm5xdTlwdGxNTmVmNEFZcWRzR2hTYklydFQrN015R1o5eGNjNnBKSTRLSUlBUUFoTzNpYzl6ZkliTWpTemN4dUszdWU5QTIvZTRQa1JJb1Q5Vlg5ZkY4QU9kcEZ6MnRMTnIzbjEiLCJtYWMiOiJkMDY4NzI1ZmYxZDlmN2NmOWYxYjJkZGIyYzBlZDlhMjNkMmNkNWY1NTU4OWE2YWM4Yzk5YjlhNWYxNzliNzM0IiwidGFnIjoiIn0%3D

                                         
                                         193.34.145.202
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Fri, 30 Sep 2022 21:32:14 GMT
Server: Apache
Last-Modified: Sun, 17 Apr 2022 21:24:00 GMT
Accept-Ranges: bytes
Content-Length: 1998
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image data, 214 x 20, 8-bit/color RGBA, non-interlaced\012- data
Size:   1998
Md5:    5d14ab93691604e826e1319d53599eb9
Sha1:   78724360e9d25da584445b851e37bca05abe6b85
Sha256: 3f0c62b5ccdcdbf3b3ae3885f1e6959e2d937eba9b29dea9a6bdb98788041756
                                        
                                            GET /images/all.png HTTP/1.1 
Host: delivery.attempt.failure.feedmybot.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://delivery.attempt.failure.feedmybot.net/public/nqnrS6yBCssG3ogLrvfHvEV0RHooBE8X
Cookie: XSRF-TOKEN=eyJpdiI6IjJvMkg1c1ZBRUxNdXhxODUzcEhDUUE9PSIsInZhbHVlIjoiaDg1dldoQ2U1NGxCUlJqYjdhVTh1MGFMd0dWczlLNzZRb2g0Q2h2eDlmSWZJajd3THFmb21WUFI0L25KSmhuVVBVZlFFTE8rdlFHZUJXRDZicFBiSHpNbVdjR3JrM1luR3Z2MTlBYlhDNnBwY2pTUVdIN0ZnNXBsRVRyRXljdnAiLCJtYWMiOiIzYjJjM2U5ODRjM2NkYTI3MTBlZWFlN2ZhMDAzMTRiMGViMWRhM2QwN2E4NTE5NTU3ZjFiOTY2YmE3NTZlODA5IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6InhJRGN4cGVRaVdBQ3BScEVTRWVBZWc9PSIsInZhbHVlIjoiRmdETWpOd1RLQ0lnUTR6ODNtZWNQTXZwUllMVm5xdTlwdGxNTmVmNEFZcWRzR2hTYklydFQrN015R1o5eGNjNnBKSTRLSUlBUUFoTzNpYzl6ZkliTWpTemN4dUszdWU5QTIvZTRQa1JJb1Q5Vlg5ZkY4QU9kcEZ6MnRMTnIzbjEiLCJtYWMiOiJkMDY4NzI1ZmYxZDlmN2NmOWYxYjJkZGIyYzBlZDlhMjNkMmNkNWY1NTU4OWE2YWM4Yzk5YjlhNWYxNzliNzM0IiwidGFnIjoiIn0%3D

                                         
                                         193.34.145.202
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Fri, 30 Sep 2022 21:32:14 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Sun, 17 Apr 2022 21:24:34 GMT
Accept-Ranges: bytes
Content-Length: 12499
Keep-Alive: timeout=5, max=100


--- Additional Info ---
Magic:  PNG image data, 123 x 84, 8-bit/color RGBA, non-interlaced\012- data
Size:   12499
Md5:    2cb0b7f615faf2deb9ec6f53d3149a3b
Sha1:   694a2c881c83e2ab86365bf1d16302ac5b9d500f
Sha256: c1d5409eecb402a99f10718b06c266ba314d9e25f0b56c6fd063699334b8be6d
                                        
                                            GET /logger-1.min.js HTTP/1.1 
Host: cdn.lr-in.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://delivery.attempt.failure.feedmybot.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         172.67.206.254
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
                                        
date: Fri, 30 Sep 2022 21:32:13 GMT
access-control-allow-origin: *
cache-control: public, max-age=14400
cross-origin-resource-policy: cross-origin
etag: W/"87bf6a1680c97873f8d004a8ce69e7afb8b431cb8470b91e6522ca3e3a8df13b"
last-modified: Fri, 30 Sep 2022 18:22:06 GMT
strict-transport-security: max-age=31556926
x-served-by: cache-bma1643-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1664562398.112379,VS0,VE1
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cf-cache-status: HIT
age: 154
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=AKsfP0UqQEkyyxn2UovSttxv43SMK8KFqXen98di0LT6VnYzm9M7jZexOpuOeFPrCep8ZUuv768BRzAD7B3AVQhpW4oRz00sy0h7gKq9unoM4hFm1Xzq4mvydlRnC5hD"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 753011eaa9d2b529-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65536), with no line terminators
Size:   161526
Md5:    a9cb16b623057fd710f5292698f8f44b
Sha1:   1296bdfe6c4a7701a9c269140d84debc0e9801ab
Sha256: 9b5a406f409f08791b6b17de5a2c34205e3863ecb0067251822a149dca2e2977
                                        
                                            GET /.cdn-cgi/killbot-security.js HTTP/1.1 
Host: files.killbot.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://delivery.attempt.failure.feedmybot.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.21.11.160
HTTP/2 404 Not Found
content-type: text/html
                                        
date: Fri, 30 Sep 2022 21:32:12 GMT
content-security-policy: default-src 'self' http: https: data: blob: 'unsafe-inline' 'unsafe-eval'
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=SQZ7BtFcVXvKy3ch7zZx6lVemB58TKZGFT6DuVvYQ3V8%2F2P80g62y3rj70Dm%2BUINwpnoVcRDSzx8gv%2BBK%2Fd%2BUJGmxwPGoW9rmECJdM0WpCBHnerws9G4rbbkbSmjA%2BLQus0Fgw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 753011df283a0b61-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text
Size:   2335
Md5:    42970cbf5c0eb9c7fc3f5114411a7bd3
Sha1:   76169f2dfc180ea46ff02c9d6658af085955de9a
Sha256: 65e4dfcb9b5343a3ad3fbfa8dcef719b84baf2caf6c995fce2984eecf26e840d
                                        
                                            GET /images/foo.png HTTP/1.1 
Host: delivery.attempt.failure.feedmybot.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://delivery.attempt.failure.feedmybot.net/public/nqnrS6yBCssG3ogLrvfHvEV0RHooBE8X
Cookie: XSRF-TOKEN=eyJpdiI6IjJvMkg1c1ZBRUxNdXhxODUzcEhDUUE9PSIsInZhbHVlIjoiaDg1dldoQ2U1NGxCUlJqYjdhVTh1MGFMd0dWczlLNzZRb2g0Q2h2eDlmSWZJajd3THFmb21WUFI0L25KSmhuVVBVZlFFTE8rdlFHZUJXRDZicFBiSHpNbVdjR3JrM1luR3Z2MTlBYlhDNnBwY2pTUVdIN0ZnNXBsRVRyRXljdnAiLCJtYWMiOiIzYjJjM2U5ODRjM2NkYTI3MTBlZWFlN2ZhMDAzMTRiMGViMWRhM2QwN2E4NTE5NTU3ZjFiOTY2YmE3NTZlODA5IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6InhJRGN4cGVRaVdBQ3BScEVTRWVBZWc9PSIsInZhbHVlIjoiRmdETWpOd1RLQ0lnUTR6ODNtZWNQTXZwUllMVm5xdTlwdGxNTmVmNEFZcWRzR2hTYklydFQrN015R1o5eGNjNnBKSTRLSUlBUUFoTzNpYzl6ZkliTWpTemN4dUszdWU5QTIvZTRQa1JJb1Q5Vlg5ZkY4QU9kcEZ6MnRMTnIzbjEiLCJtYWMiOiJkMDY4NzI1ZmYxZDlmN2NmOWYxYjJkZGIyYzBlZDlhMjNkMmNkNWY1NTU4OWE2YWM4Yzk5YjlhNWYxNzliNzM0IiwidGFnIjoiIn0%3D

                                         
                                         193.34.145.202
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
                                        
Date: Fri, 30 Sep 2022 21:32:14 GMT
Server: Apache
Cache-Control: no-cache, private
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (5395)
Size:   6609
Md5:    307dca9c775906b8de45869cabe98fcd
Sha1:   2b80c3a2fd4a235b2cc9f89315a554d0721c0dd1
Sha256: 8437bd0ef46a19c9a7c294c53e0429b40e76ebbd5fe9fd73a9025752495ddb1c
                                        
                                            GET /fonts/vendor/@fontsource/roboto/files/roboto-latin-400-normal.woff2?4673b4537a84c7f7a130799aa6af329b HTTP/1.1 
Host: delivery.attempt.failure.feedmybot.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://delivery.attempt.failure.feedmybot.net/public/css/app.css
Cookie: XSRF-TOKEN=eyJpdiI6IjJvMkg1c1ZBRUxNdXhxODUzcEhDUUE9PSIsInZhbHVlIjoiaDg1dldoQ2U1NGxCUlJqYjdhVTh1MGFMd0dWczlLNzZRb2g0Q2h2eDlmSWZJajd3THFmb21WUFI0L25KSmhuVVBVZlFFTE8rdlFHZUJXRDZicFBiSHpNbVdjR3JrM1luR3Z2MTlBYlhDNnBwY2pTUVdIN0ZnNXBsRVRyRXljdnAiLCJtYWMiOiIzYjJjM2U5ODRjM2NkYTI3MTBlZWFlN2ZhMDAzMTRiMGViMWRhM2QwN2E4NTE5NTU3ZjFiOTY2YmE3NTZlODA5IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6InhJRGN4cGVRaVdBQ3BScEVTRWVBZWc9PSIsInZhbHVlIjoiRmdETWpOd1RLQ0lnUTR6ODNtZWNQTXZwUllMVm5xdTlwdGxNTmVmNEFZcWRzR2hTYklydFQrN015R1o5eGNjNnBKSTRLSUlBUUFoTzNpYzl6ZkliTWpTemN4dUszdWU5QTIvZTRQa1JJb1Q5Vlg5ZkY4QU9kcEZ6MnRMTnIzbjEiLCJtYWMiOiJkMDY4NzI1ZmYxZDlmN2NmOWYxYjJkZGIyYzBlZDlhMjNkMmNkNWY1NTU4OWE2YWM4Yzk5YjlhNWYxNzliNzM0IiwidGFnIjoiIn0%3D

                                         
                                         193.34.145.202
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
                                        
Date: Fri, 30 Sep 2022 21:32:14 GMT
Server: Apache
Cache-Control: no-cache, private
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (5395)
Size:   6609
Md5:    307dca9c775906b8de45869cabe98fcd
Sha1:   2b80c3a2fd4a235b2cc9f89315a554d0721c0dd1
Sha256: 8437bd0ef46a19c9a7c294c53e0429b40e76ebbd5fe9fd73a9025752495ddb1c

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /releases/v6.2.0/css/free-v5-font-face.min.css?token=f7165dd215 HTTP/1.1 
Host: ka-f.fontawesome.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://delivery.attempt.failure.feedmybot.net/
Origin: http://delivery.attempt.failure.feedmybot.net
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         172.64.203.28
HTTP/2 200 OK
content-type: text/css
                                        
date: Fri, 30 Sep 2022 21:32:14 GMT
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Tue, 30 Aug 2022 16:04:58 GMT
etag: W/"e2e288c32f411dc30c0c399302a30654"
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
x-cache: Hit from cloudfront
via: 1.1 8a2dbe2d91170aaa26a5c93eeaf49e5c.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR62-C3
x-amz-cf-id: fVc-ipGdsG0vZV3FsUezYqPJ6NKvJ5CIQ7B3S3VLJ8gadJoFnPXdqQ==
age: 927810
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=i%2FSIfyOuMQW6lHBXZ3KKKGbQYJ%2FZ1yPAmajhGWN4gXygQkD4L%2Fx9Fbg5UY1eJDkwNJt0PPqoWTDoEqSkJxcFaACu%2BzrV%2BKqXINEGoF6qEXcMgt91AOoqxWnx%2BnmgFoayAXsDD33mqg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 753011ec7bf475dd-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (608)
Size:   6904
Md5:    1d87cb2b38b5bc3b852cf718826f365f
Sha1:   242108b8edfde835f3c6b9092e5db12c87c98fa4
Sha256: 0ca669da9ecdc07a3c8648ba77fddf9f813980d692404f1a9576de749fdbb29d
                                        
                                            GET /releases/v6.2.0/css/free-v4-font-face.min.css?token=f7165dd215 HTTP/1.1 
Host: ka-f.fontawesome.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://delivery.attempt.failure.feedmybot.net/
Origin: http://delivery.attempt.failure.feedmybot.net
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         172.64.203.28
HTTP/2 200 OK
content-type: text/css
                                        
date: Fri, 30 Sep 2022 21:32:14 GMT
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Tue, 30 Aug 2022 16:04:58 GMT
etag: W/"a0adfe3c7bd1fa905b7f3b5ecea27889"
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 66c9faed33e20303fb7807416114a960.cloudfront.net (CloudFront)
x-amz-cf-pop: TLV50-C1
x-amz-cf-id: n9ILkA-JF35ZPHmfF0bTmkBm0_5VtqGsSQjeJzqdQraP3jeDXL7SAA==
age: 1544314
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fX5GtppZ7RF0kmAEWuNm2TFkmu%2B0%2B6%2B0wAsJL6wuJM5TcJDygeKfSitQhWJHBnZp78kpBuCWsVQBZwOc8NEheli0H256rDapovPXzuRyVRccfbEvBXl6JVTViwpAsk8hPiTbHCd0Kg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 753011ec7bf775dd-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1560)
Size:   7236
Md5:    d9cf3bbec5daed1995691bb3c4de2f1a
Sha1:   60937481d6b648b439cebe4ae3a9ee2b804de26c
Sha256: b60905b9a22843a160dd7400f5d23896cb6b5978020647bfb4ef7a508c5b3f7f
                                        
                                            GET /fonts/vendor/@fortawesome/fontawesome-free/webfa-solid-900.woff?eeccf4f66002c6f2ba24d3d22f2434c2 HTTP/1.1 
Host: delivery.attempt.failure.feedmybot.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://delivery.attempt.failure.feedmybot.net/public/css/app.css
Cookie: XSRF-TOKEN=eyJpdiI6IjJvMkg1c1ZBRUxNdXhxODUzcEhDUUE9PSIsInZhbHVlIjoiaDg1dldoQ2U1NGxCUlJqYjdhVTh1MGFMd0dWczlLNzZRb2g0Q2h2eDlmSWZJajd3THFmb21WUFI0L25KSmhuVVBVZlFFTE8rdlFHZUJXRDZicFBiSHpNbVdjR3JrM1luR3Z2MTlBYlhDNnBwY2pTUVdIN0ZnNXBsRVRyRXljdnAiLCJtYWMiOiIzYjJjM2U5ODRjM2NkYTI3MTBlZWFlN2ZhMDAzMTRiMGViMWRhM2QwN2E4NTE5NTU3ZjFiOTY2YmE3NTZlODA5IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6InhJRGN4cGVRaVdBQ3BScEVTRWVBZWc9PSIsInZhbHVlIjoiRmdETWpOd1RLQ0lnUTR6ODNtZWNQTXZwUllMVm5xdTlwdGxNTmVmNEFZcWRzR2hTYklydFQrN015R1o5eGNjNnBKSTRLSUlBUUFoTzNpYzl6ZkliTWpTemN4dUszdWU5QTIvZTRQa1JJb1Q5Vlg5ZkY4QU9kcEZ6MnRMTnIzbjEiLCJtYWMiOiJkMDY4NzI1ZmYxZDlmN2NmOWYxYjJkZGIyYzBlZDlhMjNkMmNkNWY1NTU4OWE2YWM4Yzk5YjlhNWYxNzliNzM0IiwidGFnIjoiIn0%3D; _lr_tabs_-mnnzup%2Fdus={%22sessionID%22:0%2C%22recordingID%22:%225-41c7032c-c965-4f0b-9448-54fe1a9f7f8e%22%2C%22lastActivity%22:1664573531154}; _lr_hb_-mnnzup%2Fdus={%22heartbeat%22:1664573531154}; _lr_uf_-mnnzup=c0ec921d-3354-4d60-8483-9579ba088b47

                                         
                                         193.34.145.202
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
                                        
Date: Fri, 30 Sep 2022 21:32:16 GMT
Server: Apache
Cache-Control: no-cache, private
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (5395)
Size:   6609
Md5:    307dca9c775906b8de45869cabe98fcd
Sha1:   2b80c3a2fd4a235b2cc9f89315a554d0721c0dd1
Sha256: 8437bd0ef46a19c9a7c294c53e0429b40e76ebbd5fe9fd73a9025752495ddb1c

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "109311108C4092109B45EB235CC9D8D8EC4437B71D858C26E86CDCEC1C8D4B28"
Last-Modified: Thu, 29 Sep 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7531
Expires: Fri, 30 Sep 2022 23:37:48 GMT
Date: Fri, 30 Sep 2022 21:32:17 GMT
Connection: keep-alive

                                        
                                            GET /fonts/vendor/@fontsource/roboto/files/roboto-all-400-normal.woff?376ea5d93f71583052f65de4e0c6a92c HTTP/1.1 
Host: delivery.attempt.failure.feedmybot.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://delivery.attempt.failure.feedmybot.net/public/css/app.css
Cookie: XSRF-TOKEN=eyJpdiI6IjJvMkg1c1ZBRUxNdXhxODUzcEhDUUE9PSIsInZhbHVlIjoiaDg1dldoQ2U1NGxCUlJqYjdhVTh1MGFMd0dWczlLNzZRb2g0Q2h2eDlmSWZJajd3THFmb21WUFI0L25KSmhuVVBVZlFFTE8rdlFHZUJXRDZicFBiSHpNbVdjR3JrM1luR3Z2MTlBYlhDNnBwY2pTUVdIN0ZnNXBsRVRyRXljdnAiLCJtYWMiOiIzYjJjM2U5ODRjM2NkYTI3MTBlZWFlN2ZhMDAzMTRiMGViMWRhM2QwN2E4NTE5NTU3ZjFiOTY2YmE3NTZlODA5IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6InhJRGN4cGVRaVdBQ3BScEVTRWVBZWc9PSIsInZhbHVlIjoiRmdETWpOd1RLQ0lnUTR6ODNtZWNQTXZwUllMVm5xdTlwdGxNTmVmNEFZcWRzR2hTYklydFQrN015R1o5eGNjNnBKSTRLSUlBUUFoTzNpYzl6ZkliTWpTemN4dUszdWU5QTIvZTRQa1JJb1Q5Vlg5ZkY4QU9kcEZ6MnRMTnIzbjEiLCJtYWMiOiJkMDY4NzI1ZmYxZDlmN2NmOWYxYjJkZGIyYzBlZDlhMjNkMmNkNWY1NTU4OWE2YWM4Yzk5YjlhNWYxNzliNzM0IiwidGFnIjoiIn0%3D; _lr_tabs_-mnnzup%2Fdus={%22sessionID%22:0%2C%22recordingID%22:%225-41c7032c-c965-4f0b-9448-54fe1a9f7f8e%22%2C%22lastActivity%22:1664573531154}; _lr_hb_-mnnzup%2Fdus={%22heartbeat%22:1664573531154}; _lr_uf_-mnnzup=c0ec921d-3354-4d60-8483-9579ba088b47

                                         
                                         193.34.145.202
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
                                        
Date: Fri, 30 Sep 2022 21:32:15 GMT
Server: Apache
Cache-Control: no-cache, private
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (5395)
Size:   6609
Md5:    307dca9c775906b8de45869cabe98fcd
Sha1:   2b80c3a2fd4a235b2cc9f89315a554d0721c0dd1
Sha256: 8437bd0ef46a19c9a7c294c53e0429b40e76ebbd5fe9fd73a9025752495ddb1c

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /fonts/vendor/@fortawesome/fontawesome-free/webfa-brands-400.woff?2285773e6b4b172f07d9b777c81b0775 HTTP/1.1 
Host: delivery.attempt.failure.feedmybot.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://delivery.attempt.failure.feedmybot.net/public/css/app.css
Cookie: XSRF-TOKEN=eyJpdiI6IjJvMkg1c1ZBRUxNdXhxODUzcEhDUUE9PSIsInZhbHVlIjoiaDg1dldoQ2U1NGxCUlJqYjdhVTh1MGFMd0dWczlLNzZRb2g0Q2h2eDlmSWZJajd3THFmb21WUFI0L25KSmhuVVBVZlFFTE8rdlFHZUJXRDZicFBiSHpNbVdjR3JrM1luR3Z2MTlBYlhDNnBwY2pTUVdIN0ZnNXBsRVRyRXljdnAiLCJtYWMiOiIzYjJjM2U5ODRjM2NkYTI3MTBlZWFlN2ZhMDAzMTRiMGViMWRhM2QwN2E4NTE5NTU3ZjFiOTY2YmE3NTZlODA5IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6InhJRGN4cGVRaVdBQ3BScEVTRWVBZWc9PSIsInZhbHVlIjoiRmdETWpOd1RLQ0lnUTR6ODNtZWNQTXZwUllMVm5xdTlwdGxNTmVmNEFZcWRzR2hTYklydFQrN015R1o5eGNjNnBKSTRLSUlBUUFoTzNpYzl6ZkliTWpTemN4dUszdWU5QTIvZTRQa1JJb1Q5Vlg5ZkY4QU9kcEZ6MnRMTnIzbjEiLCJtYWMiOiJkMDY4NzI1ZmYxZDlmN2NmOWYxYjJkZGIyYzBlZDlhMjNkMmNkNWY1NTU4OWE2YWM4Yzk5YjlhNWYxNzliNzM0IiwidGFnIjoiIn0%3D; _lr_tabs_-mnnzup%2Fdus={%22sessionID%22:0%2C%22recordingID%22:%225-41c7032c-c965-4f0b-9448-54fe1a9f7f8e%22%2C%22lastActivity%22:1664573531154}; _lr_hb_-mnnzup%2Fdus={%22heartbeat%22:1664573531154}; _lr_uf_-mnnzup=c0ec921d-3354-4d60-8483-9579ba088b47

                                         
                                         193.34.145.202
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
                                        
Date: Fri, 30 Sep 2022 21:32:16 GMT
Server: Apache
Cache-Control: no-cache, private
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (5395)
Size:   6609
Md5:    307dca9c775906b8de45869cabe98fcd
Sha1:   2b80c3a2fd4a235b2cc9f89315a554d0721c0dd1
Sha256: 8437bd0ef46a19c9a7c294c53e0429b40e76ebbd5fe9fd73a9025752495ddb1c

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST /i?a=mnnzup%2Fdus&r=5-41c7032c-c965-4f0b-9448-54fe1a9f7f8e&t=e7468950-da58-4130-9a20-563d2b7fc471&s=0&rs=0%2Cu HTTP/1.1 
Host: r.lr-in.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Length: 389426
Origin: http://delivery.attempt.failure.feedmybot.net
Connection: keep-alive
Referer: http://delivery.attempt.failure.feedmybot.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         104.198.23.205
HTTP/2 201 Created
content-type: application/json; charset=utf-8
                                        
date: Fri, 30 Sep 2022 21:32:18 GMT
content-length: 104
x-powered-by: Express
access-control-allow-origin: *
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
etag: W/"68-bKW1I+6ujOEijWzRIER2LWMXtxA"
strict-transport-security: max-age=15724800; includeSubDomains
access-control-allow-credentials: true
access-control-allow-headers: DNT,Keep-Alive,User-Agent,X-Requested-With,X-Csrftoken,If-Modified-Since,Cache-Control,Content-Type,Authorization,Accept,Origin,X-Logrocket-Url,X-Logrocket-Ignore,X-Logrocket-Secret,X-LogRocket-ClickHouse-Override,X-LogRocket-ClickHouse-Enabled-Queries
access-control-max-age: 1728000
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   104
Md5:    189e5aa5a897b0373bbde8ab5b70865d
Sha1:   6ca5b523eeae8ce1228d6cd12044762d6317b710
Sha256: 56c57ddb04140a37df2f0b9ae80dbdd58368da58e2705746420039eeb6a60b90
                                        
                                            GET /fonts/vendor/@fortawesome/fontawesome-free/webfa-solid-900.ttf?be9ee23c0c6390141475d519c2c5fb8f HTTP/1.1 
Host: delivery.attempt.failure.feedmybot.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://delivery.attempt.failure.feedmybot.net/public/css/app.css
Cookie: XSRF-TOKEN=eyJpdiI6IjJvMkg1c1ZBRUxNdXhxODUzcEhDUUE9PSIsInZhbHVlIjoiaDg1dldoQ2U1NGxCUlJqYjdhVTh1MGFMd0dWczlLNzZRb2g0Q2h2eDlmSWZJajd3THFmb21WUFI0L25KSmhuVVBVZlFFTE8rdlFHZUJXRDZicFBiSHpNbVdjR3JrM1luR3Z2MTlBYlhDNnBwY2pTUVdIN0ZnNXBsRVRyRXljdnAiLCJtYWMiOiIzYjJjM2U5ODRjM2NkYTI3MTBlZWFlN2ZhMDAzMTRiMGViMWRhM2QwN2E4NTE5NTU3ZjFiOTY2YmE3NTZlODA5IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6InhJRGN4cGVRaVdBQ3BScEVTRWVBZWc9PSIsInZhbHVlIjoiRmdETWpOd1RLQ0lnUTR6ODNtZWNQTXZwUllMVm5xdTlwdGxNTmVmNEFZcWRzR2hTYklydFQrN015R1o5eGNjNnBKSTRLSUlBUUFoTzNpYzl6ZkliTWpTemN4dUszdWU5QTIvZTRQa1JJb1Q5Vlg5ZkY4QU9kcEZ6MnRMTnIzbjEiLCJtYWMiOiJkMDY4NzI1ZmYxZDlmN2NmOWYxYjJkZGIyYzBlZDlhMjNkMmNkNWY1NTU4OWE2YWM4Yzk5YjlhNWYxNzliNzM0IiwidGFnIjoiIn0%3D; _lr_tabs_-mnnzup%2Fdus={%22sessionID%22:0%2C%22recordingID%22:%225-41c7032c-c965-4f0b-9448-54fe1a9f7f8e%22%2C%22lastActivity%22:1664573531154}; _lr_hb_-mnnzup%2Fdus={%22heartbeat%22:1664573531154}; _lr_uf_-mnnzup=c0ec921d-3354-4d60-8483-9579ba088b47

                                         
                                         193.34.145.202
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
                                        
Date: Fri, 30 Sep 2022 21:32:17 GMT
Server: Apache
Cache-Control: no-cache, private
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (5395)
Size:   6609
Md5:    307dca9c775906b8de45869cabe98fcd
Sha1:   2b80c3a2fd4a235b2cc9f89315a554d0721c0dd1
Sha256: 8437bd0ef46a19c9a7c294c53e0429b40e76ebbd5fe9fd73a9025752495ddb1c
                                        
                                            GET /releases/v6.2.0/webfonts/free-fa-solid-900.woff2 HTTP/1.1 
Host: ka-f.fontawesome.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://delivery.attempt.failure.feedmybot.net
Connection: keep-alive
Referer: http://delivery.attempt.failure.feedmybot.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         172.64.203.28
HTTP/2 200 OK
content-type: font/woff2
                                        
date: Fri, 30 Sep 2022 21:32:18 GMT
content-length: 150456
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Tue, 30 Aug 2022 16:15:00 GMT
etag: "822fa3f2f51f169c970f713b88158737"
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
x-cache: Hit from cloudfront
via: 1.1 2aada689faf5daa4bda5786998250d40.cloudfront.net (CloudFront)
x-amz-cf-pop: TLV50-C2
x-amz-cf-id: RklvJA6SZTYhk05yUhu5e2rUPfJlHuwnlWUQyfWs_G6Mb4xnmAvp9A==
age: 915447
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JImpw7LsjskT3VhUu%2B6vbuwUJ3dmNFDc%2FQZCDfzeaKI1uc7J20LYIoh8aQoyEgPdU7IEAScyHWQu1XvU0NRT7qzca4sLPmdoyjHfCmJ5SWdfkKEQgGBJXTPPA3uHGwnnLWHzGVQLBg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7530120a2f7375dd-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 150456, version 770.256\012- data
Size:   150456
Md5:    822fa3f2f51f169c970f713b88158737
Sha1:   74b5ddde927a0f84883fed55a65ffbb6ada11761
Sha256: ad28ece0bf48b1488c82aaf700201d7f6b56a62e11b5b6a0a12481780c8a3417
                                        
                                            GET /fonts/vendor/@fortawesome/fontawesome-free/webfa-brands-400.ttf?527940b104eb2ea366c8630f3f038603 HTTP/1.1 
Host: delivery.attempt.failure.feedmybot.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://delivery.attempt.failure.feedmybot.net/public/css/app.css
Cookie: XSRF-TOKEN=eyJpdiI6IjJvMkg1c1ZBRUxNdXhxODUzcEhDUUE9PSIsInZhbHVlIjoiaDg1dldoQ2U1NGxCUlJqYjdhVTh1MGFMd0dWczlLNzZRb2g0Q2h2eDlmSWZJajd3THFmb21WUFI0L25KSmhuVVBVZlFFTE8rdlFHZUJXRDZicFBiSHpNbVdjR3JrM1luR3Z2MTlBYlhDNnBwY2pTUVdIN0ZnNXBsRVRyRXljdnAiLCJtYWMiOiIzYjJjM2U5ODRjM2NkYTI3MTBlZWFlN2ZhMDAzMTRiMGViMWRhM2QwN2E4NTE5NTU3ZjFiOTY2YmE3NTZlODA5IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6InhJRGN4cGVRaVdBQ3BScEVTRWVBZWc9PSIsInZhbHVlIjoiRmdETWpOd1RLQ0lnUTR6ODNtZWNQTXZwUllMVm5xdTlwdGxNTmVmNEFZcWRzR2hTYklydFQrN015R1o5eGNjNnBKSTRLSUlBUUFoTzNpYzl6ZkliTWpTemN4dUszdWU5QTIvZTRQa1JJb1Q5Vlg5ZkY4QU9kcEZ6MnRMTnIzbjEiLCJtYWMiOiJkMDY4NzI1ZmYxZDlmN2NmOWYxYjJkZGIyYzBlZDlhMjNkMmNkNWY1NTU4OWE2YWM4Yzk5YjlhNWYxNzliNzM0IiwidGFnIjoiIn0%3D; _lr_tabs_-mnnzup%2Fdus={%22sessionID%22:0%2C%22recordingID%22:%225-41c7032c-c965-4f0b-9448-54fe1a9f7f8e%22%2C%22lastActivity%22:1664573531154}; _lr_hb_-mnnzup%2Fdus={%22heartbeat%22:1664573531154}; _lr_uf_-mnnzup=c0ec921d-3354-4d60-8483-9579ba088b47

                                         
                                         193.34.145.202
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
                                        
Date: Fri, 30 Sep 2022 21:32:18 GMT
Server: Apache
Cache-Control: no-cache, private
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (5395)
Size:   6609
Md5:    307dca9c775906b8de45869cabe98fcd
Sha1:   2b80c3a2fd4a235b2cc9f89315a554d0721c0dd1
Sha256: 8437bd0ef46a19c9a7c294c53e0429b40e76ebbd5fe9fd73a9025752495ddb1c

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /c/hotjar-2895475.js?sv=6 HTTP/1.1 
Host: static.hotjar.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://delivery.attempt.failure.feedmybot.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.111.113
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
date: Fri, 30 Sep 2022 21:32:14 GMT
access-control-allow-origin: *
cache-control: max-age=60
content-encoding: br
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=604800; includeSubDomains
x-cache-hit: 1
x-content-type-options: nosniff
etag: W/8a024a940930c7d550b98d5cecae62bf
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: CPVwZPaz636d6CT_edKOIaYkL-MQQQUeSJm3SLcVRKc3kMHlkUMufQ==
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /f7165dd215.js HTTP/1.1 
Host: kit.fontawesome.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://delivery.attempt.failure.feedmybot.net
Connection: keep-alive
Referer: http://delivery.attempt.failure.feedmybot.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         104.18.23.52
HTTP/2 200 OK
content-type: text/javascript
                                        
date: Fri, 30 Sep 2022 21:32:13 GMT
access-control-allow-headers: accept, accept-langauge, content-language, content-type, fa-kit-token
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
access-control-max-age: 3000
cache-control: max-age=60, public, must-revalidate
strict-transport-security: max-age=31536000; preload
vary: origin, accept-encoding, access-control-request-headers, access-control-request-method
x-request-id: FxQ-Q5SauzxdOM3JGD4C
cf-cache-status: REVALIDATED
server: cloudflare
cf-ray: 753011ead80bb4ed-OSL
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---